ab851e3d9724f2d9429252ba5941041feee9b560ef909bc20bc6bded14f9fcdf | Triage

Sharing

General

Target

ab851e3d9724f2d9429252ba5941041feee9b560ef909bc20bc6bded14f9fcdf
Size

309KB
Sample

221107-kw3ttsghb8
MD5

6b03d9bfdf3d0327fcc8a31caf4397af
SHA1

7aafcbffaecee2e0a39521010cb3971723b2307e
SHA256

ab851e3d9724f2d9429252ba5941041feee9b560ef909bc20bc6bded14f9fcdf
SHA512

3123ca738524efe73b98fea3ae40f8f5adbc431e3320511e5e87b2a1d01f99fa988c615859f95b6e6c24427ca78b7ebce95389a5933bfe32ec664fd8616480d2
SSDEEP

3072:SmHErzQyyoCWbuWKMTxqXUqTtTqKpjUokM+rPNHJlc2+n0stYOygQn:fErcypIWKMT0kITByoktPdJlc2kFCgu

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  ab851e3d9724f2d9429252ba5941041feee9b560ef909bc20bc6bded14f9fcdf
- Size
  
  309KB
- MD5
  
  6b03d9bfdf3d0327fcc8a31caf4397af
- SHA1
  
  7aafcbffaecee2e0a39521010cb3971723b2307e
- SHA256
  
  ab851e3d9724f2d9429252ba5941041feee9b560ef909bc20bc6bded14f9fcdf
- SHA512
  
  3123ca738524efe73b98fea3ae40f8f5adbc431e3320511e5e87b2a1d01f99fa988c615859f95b6e6c24427ca78b7ebce95389a5933bfe32ec664fd8616480d2
- SSDEEP
  
  3072:SmHErzQyyoCWbuWKMTxqXUqTtTqKpjUokM+rPNHJlc2+n0stYOygQn:fErcypIWKMT0kITByoktPdJlc2kFCgu
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2